Aggregator

A vulnerability, which was classified as problematic, has been found in Apache HTTP Server up to 1.3.32-r1. This issue affects the function get_tag of the component mod_include. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2004-0940. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

For the latest discoveries in cyber research for the week of 2nd December, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Supply chain software provider Blue Yonder was hit by a ransomware attack, disrupting services for clients like Starbucks and UK grocery chains Morrisons and Sainsbury’s. The incident affected operations such as employee […]

The post 2nd December – Threat Intelligence Report appeared first on Check Point Research.

1936 年天文学家在猎户座发现一颗年轻恒星的亮度在数月内急剧增加至原本的百倍，最亮时达到太阳的 100 倍。与恒星爆炸不同，其亮度在峰值后仅以缓慢速度减弱。此现象起初被认为是个案，但后续研究显示，这类高度不稳定的年轻恒星实际上属于一个独特的爆发性恒星族群，并被命名为「猎户FU型星（FU Orionis）」 。为了深入理解其爆发机制，天文学家利用哈勃望远镜的紫外线观测能力，研究其恒星表面与吸积盘之间的交互作用，并揭示了一些令人震惊的新细节。观测显示，吸积盘长期以来向恒星输送物质，其中紧贴恒星的内盘部分极为炙热，其紫外线亮度远超预期，对传统理论提出了挑战。根据传统理论，新生恒星透过吸积盘及周围星云逐步累积物质，并由恒星磁场产生的压力阻止吸积盘直接接触恒星。然而猎户FU型星的吸积盘因其相对于中心恒星的巨大质量，容易产生不稳定性，导致吸积速率剧烈波动。当吸积速率突然增加时，这种不稳定性会破坏恒星磁场与吸积盘内缘的平衡，使得吸积盘物质得以进一步接近甚至直接撞击恒星表面。这种剧烈的物质输送过程，使猎户FU型星在爆发期间的亮度远超典型的恒星形成阶段。此外吸积盘内物质接近恒星时的运行速度远高于恒星自转速度，形成了一个高能量的撞击区。这些物质在撞击区快速减速并剧烈升温。观测显示，这些撞击区的温度高达 16,000K，接近太阳表面温度的三倍，几乎是传统模型预测值的两倍。

Mikhail Matveev, aka WazaWaka, had worked with several ransomware groups, including Babuk, Conti, Darkside, Hive and LockBit

抓取和爬取的不同

网友在社媒上报告，人人网现在已无法登录，网站仍然可以访问，但登录时会提示账号密码错误，疑似停止服务。人人网目前的登录页面已经没有注册账号、找回密码等选项。早在11月中下旬，就有网友报告找不到人人网以前的相册照片了。官方客服对媒体表示，人人网已停止服务，后续恢复时间未知。人人网原名校内网，创办于 2005 年，一度被视为与 Facebook 类似的中文社交平台，同时也是中国大陆最早的校园社交关系网络平台之一。前期的校内网以学生用户作为主要用户群体，但改名为人人网后，其已改变完全偏重于学生群体的策略，而更多地试图将用户群扩展至校外社会，意图扩大其目标用户群体。随着微信朋友圈的兴起，人人网流量急速下跌并日益没落，人人网后转型为直播平台，但并不太成功。官网现已发布公告，宣称在“换车升级”。

Group-IB раскрывает схему глобального обмана.

11月30日，中国互联网络信息中心（CNNIC）在第五届中国互联网基础资源大会上发布《生成式人工智能应用发展报告（2024）》。《报告》显示，截至2024年6月，我国生成式人工智能产品的用户规模达2.3亿人，占整体人口的16.4%。

11月30日，中国互联网络信息中心联合中国科学院计算机网络信息中心、中国互联网协会共同主办的2024（第五届）中国互联网基础资源大会在北京召开。

12月1日起，《电信网络诈骗及其关联违法犯罪联合惩戒办法》将正式施行。为有效遏制网络诈骗犯罪高发多发，围绕群众关心的一系列相关问题，公安部刑事侦查局打击新型网络犯罪指导处副处长胡志伟进行了解读。

近日，最高检、公安部联合挂牌督办第四批8起特大跨境电信网络诈骗犯罪案件，向社会持续释放依法查处、从严惩治的强烈信号。最高检经济犯罪检察厅、公安部刑事侦查局有关负责人共同就联合挂牌督办该批案件回答记者提问。

为进一步遏制跨境电信网络诈骗犯罪多发高发态势，最大限度切断境内不法分子与境外诈骗集团勾结的犯罪链条，根据常态化挂牌督办工作机制，近日，最高人民检察院、公安部决定继续联合挂牌督办第四批8起特大跨境电信网络诈骗犯罪案件。

当前，以人工智能为代表的新一轮科技革命和产业变革深入发展，数据驱动的人工智能发展应用与我国经济社会数字化转型形成历史性交汇。数据源于经济社会并赋能经济社会，其作为基础性战略资源的作用越来越受到重视。

此次公开征求意见的时间是2024年11月29日至12月6日。

点击文章，了解最前沿的国际网安资讯！

A vulnerability was found in MediaTek MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6896, MT6897, MT6983, MT6985, MT6989, MT8321, MT8666, MT8667, MT8673, MT8678, MT8765, MT8766, MT8766R, MT8768, MT8771, MT8781, MT8786, MT8788, MT8788E, MT8791T, MT8797, MT8798 and MT8863T. It has been rated as problematic. This issue affects some unknown processing of the component Telephony. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2024-20127. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic has been found in MediaTek MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6896, MT6897, MT6983, MT6985, MT6989, MT8321, MT8666, MT8667, MT8673, MT8678, MT8765, MT8766, MT8766R, MT8768, MT8771, MT8781, MT8786, MT8788, MT8788E, MT8791T, MT8797, MT8798 and MT8863T. Affected is an unknown function of the component Telephony. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2024-20128. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in HPE IceWall. Affected by this vulnerability is an unknown functionality. The manipulation leads to insufficiently protected credentials. This vulnerability is known as CVE-2024-11856. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in MediaTek MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8795T, MT8797 and MT8798. This affects an unknown part of the component Cmdq. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2024-20116. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in MediaTek MT6580, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8175, MT8195, MT8321, MT8365, MT8370, MT8385, MT8390, MT8395, MT8666, MT8667, MT8673, MT8765, MT8766, MT8768, MT8771, MT8781, MT8786, MT8788, MT8791T, MT8797 and MT8798 and classified as critical. This issue affects some unknown processing of the component Vdec. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2024-20125. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.